[Shorewall-newbies] No access from loc to net

Tom Eastep teastep at shorewall.net
Sat Mar 13 09:05:18 PST 2004


On Saturday 13 March 2004 02:02 pm, motiv8d wrote:

> root at chewy:/etc/shorewall# ip addr show
> 1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue
>     link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
>     inet 127.0.0.1/8 scope host lo
> 2: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
>     link/ether 00:02:b3:b7:13:8e brd ff:ff:ff:ff:ff:ff
>     inet 192.168.0.254/24 brd 192.168.0.255 scope global eth0
> 3: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
>     link/ether 00:10:dc:e0:f5:82 brd ff:ff:ff:ff:ff:ff
>     inet 10.10.10.254/24 brd 10.255.255.255 scope global eth1
> 4: eth2: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
>     link/ether 00:09:5b:1b:70:65 brd ff:ff:ff:ff:ff:ff
>     inet 10.10.11.254/24 brd 10.255.255.255 scope global eth2

While not related to your problem, the broadcast addresses are incorrect on 
eth1 and eth2 -- they should be 10.10.10.255 and 10.10.11.255 respectively. 
That's why you are seeing so many messages logged.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net




More information about the Shorewall-newbies mailing list